CVE-2021-33000

Summary

Parsing a maliciously crafted project file may cause a heap-based buffer overflow, which may allow an attacker to perform arbitrary code execution. User interaction is required on the WebAccess HMI Designer (versions 2.1.9.95 and prior).

Affected Software

VendorProductVersion RangeStatus
n/aWebAccess HMI Designerversions 2.1.9.95 and prioraffected

Weaknesses

  • CWE-122: HEAP-BASED BUFFER OVERFLOW CWE-122

ADP Enrichment

CVE Program Container

Additional References

References